The newly announced Demisto Splunk App enables customers to send Splunk incident data directly to the Demisto Enterprise platform. With this new app, customers can accelerate the incident management and response process by automating the entire flow, starting from the Splunk alert through to an incident playbook automation in Demisto, helping increase SOC efficiencies. The app can be downloaded from Splunkbase at https://splunkbase.splunk.com/app/3286/.

Demisto Enterprise’s intelligent automation is provided by DBot, a security chatbot. DBot automates actions across security products and correlates artifacts across incidents by using sophisticated patterns and powerful search capabilities. DBot searches through past and ongoing forensic investigations, and proactively alerts the users when duplicate or related incidents are identified. The playbooks were developed by security and incident response experts, following National Institute of Standards and Technology (NIST) and other regulatory documents. To create new best practices, additional playbooks can be created by users to satisfy compliance and audit requirements, or for interactive modeling and training of analysts.

.conf2016 will feature more than 175 technical sessions, including more than 80 customer presentations, and is expected to attract IT, security and business professionals who know the value of their data. The conference will be held Sept. 26 – 29 at The Walt Disney World Swan and Dolphin Resorts, Orlando, Fla., with three days of optional education classes through Splunk University, Sept. 24 – 26.

.conf2016 attendees will learn how to gain Operational Intelligence from machine-generated data by improving customer experience and service delivery, enhancing IT performance, shipping better code faster, providing timely business insights, or reaching new levels of security in their organization. With more than 50 percent of the Fortune 100 in attendance, it’s the best place to learn how leading companies are using Splunk. Attendees will share best practices, discover new features and ways to implement Splunk software to gain insights from their data. Register for .conf2016. At the conference, follow us on LinkedIn and Twitter @splunkconf (all conversations tagged #splunkconf16).

About DemistoDemisto helps Security Operations Centers scale their human resources, improve incident response times, and capture evidence while working to solve problems collaboratively. Demisto Enterprise is the first comprehensive, Bot-powered Security ChatOps Platform to combine intelligent automation with collaboration. Demisto’s intelligent automation is powered by DBot which works with teams to automate playbooks, correlate artifacts, enable information sharing and auto document the entire incident lifecycle. Demisto is backed by Accel and has offices in Silicon Valley and Tel Aviv. For more information, visit demisto.wpengine.com or email info@demisto.com.

###

Demisto is a registered trademark of Demisto in the United States and other countries. All other company and product names are either trademarks or registered trademarks of their respective companies.

Splunk>, Listen to Your Data, The Engine for Machine Data, Hunk, Splunk Cloud, Splunk Light, SPL and Splunk MINT are trademarks and registered trademarks of Splunk Inc. in the United States and other countries.

We use cookies to understand how you use our site and to improve your experience. This includes personalizing content and resources. By continuing to use our site, you accept our use of cookies. Learn more.